We are working on a pfsense/opnsense firewall traffic visualization tool based on ELK stack. It is a highly customizable solution that let’s you have extensive insight into your network traffic.
Key points:
* pfsense/opnsense support
* openvpn event parsing
* suricata/snort dashboards with interactive Maps support (MaxMind GeoIp fields, src -> dest locations, heatmap, etc.)
Key points:
* pfsense/opnsense support
* openvpn event parsing
* suricata/snort dashboards with interactive Maps support (MaxMind GeoIp fields, src -> dest locations, heatmap, etc.)
* deploy with ansible playbook, docker or script.
https://github.com/3ilson/pfelk